opportunistic encryption using ipsec
play

OPPORTUNISTIC ENCRYPTION USING IPSEC Linux Security Summit, Toronto - PowerPoint PPT Presentation

Jun 14, 2023 •398 likes •736 views

OPPORTUNISTIC ENCRYPTION USING IPSEC Linux Security Summit, Toronto August 2016 Presented by Paul Wouters, RHEL Security THE LIBRESWAN PROJECT An Internet Key Exchange (IKE) daemon for IPsec Enterprise IPsec based VPN solution

  1. OPPORTUNISTIC ENCRYPTION USING IPSEC Linux Security Summit, Toronto August 2016 Presented by Paul Wouters, RHEL Security

  2. THE LIBRESWAN PROJECT An Internet Key Exchange (“IKE”) daemon for IPsec Enterprise IPsec based • VPN solution Make encryption the default • mode of communication Certifications (FIPS, Common Criteria, • USGv6, etc.) Contributing to IETF Standards • for IKE and IPsec 2 Opportunistic Encryption using IPsec

  3. IPsec PRIMER IKE + IPsec = VPN IKE (USERLAND) IPsec (KERNEL) ISAKMP, IKE SA, PHASE 1 IPsec SA, CHILD SA, PHASE 2 UDP PORT 500 AND 4500 PROTOCOL 50 AND 51 Command Channel Data Channel • • Peer authentication Encapsulated Security Payload • • (ESP) IP packet encryption Connection parameter negotiation • Authenticated Header (AH) • IPsec symmetric key generation • ESPinUDP (for NAT) • Communicates to kernel • Tunnel Mode (IP in IP) • IKE itself is encrypted • Transport Mode • IKE does not encrypt the IP traffic • 3 Opportunistic Encryption using IPsec

  4. TYPICAL SITE TO SITE VPN Individual networks are unencryped, only the interconnect is encrypted 4 Opportunistic Encryption using IPsec

  5. TYPICAL REMOTE ACCESS VPN End device to site network access point encrypted – LAN still unencrypted 5 Opportunistic Encryption using IPsec

  6. HISTORY: THE FreeS/WAN PROJECT (1996-2003) “My project for 1996 was to secure 5% of the Internet traffic against passive wiretapping” – John Gilmore Opportunistic Encryption • Enable encryption between • any two nodes without pre-configuration 6 Opportunistic Encryption using IPsec

  7. HISTORY: THE FreeS/WAN PROJECT (1996-2003) S/WAN stands for “Secure Wide Area Network” (trademarked by RSA Inc.) • The term “Virtual Private Network” (VPN) became popular instead • Predates OpenSSL • Used some SSLeay code (with special permission of Eric Andrew Young) • Predates the Internet key Exchange (“IKEv1” – RFC 2409) published in 1998 • Predates CryptoAPI (kerneli.org started around 2002) • Predates United States export laws for cryptography • 1995 – 1999: Bernstien v. United States on “crypto is free speech” • 1996: Allow export of 56-bit crypto (RC4) with key recovery backdoor • 1999: Allow export of 56-bit crypto (DES, RC4) without backdoor, and 1024-bit RSA • Predates DNSSEC and most of the CA industry • 7 Opportunistic Encryption using IPsec

  8. HISTORY: THE FreeS/WAN PROJECT (1996-2003) Where FreeS/WAN succeeded Supported Linux 2.0 and up • Became the gold standard of IKE and IPsec • Strong deployment in the Enterprise • 8 Opportunistic Encryption using IPsec

  9. HISTORY: THE FreeS/WAN PROJECT (1996-2003) Where FreeS/WAN failed IKEv1 protocol specification took 3-years • Developers could not be United States citizens (Oh Canada…) • Packet triggered events relied on IP address • And no real access to the reverse DNS in-addr.arpa • The Internet became reliant on NAT • And no universal deployment of IPv6 to obsolete it • Required mutual authentication is problematic (SSL got it right) • Unauthenticated encryption rejected as unsafe, confusing for enduser • Secure DNS needed for key distribution took 15-years • Root zone finally signed in 2010 • FreeS/WAN kicked out DNSSEC KEY/SIG records, back to TXT • 2001: Echelon spying network exposed – no one cares • 9 Opportunistic Encryption using IPsec

  10. HISTORY: THE OPENSWAN PROJECT (2003-2011) Ex-employees and volunteers forked FreeS/WAN John Gilmore gives up on OE • Americans can submit code • Enterprise deployments just work • Support native IPsec (XFRM/NETKEY) • Use optional NSS crypto library • Hardware acceleration support • (OCF and native) Initial rough IKEv2 implementation • Opportunistic Encryption mothballed • 2012: A lawsuit requires that the project • renames itself 10 Opportunistic Encryption using IPsec

  11. HISTORY: THE LIBRESWAN PROJECT (2011-ONGOING) The Great Overhaul Only use NSS crypto library • IKEv2 • Crypto suites update • Modern network timers • Event loops • Cleanup codebase to support FIPS, CAVP, • Common Criteria Cloud support • Revisit Opportunistic Encryption • 11 Opportunistic Encryption using IPsec

  12. HISTORY: REVISITING OPPORTUNISTIC ENCRYPTION IKEv2 allows asymmetric AUTH like SSL/TLS • IKEv2 allows assigning IP addresses natively • Linux conntrack vastly improved • Linux XFRM/NETKEY vastly improved (TCP packet caching) • DNSSEC expected to go on the end node • Unbound DNS server with DNSSEC-trigger • Allows DNS based triggers for Opportunistic Encryption • DNSSEC triggers to replace the reverse DNS in-addr.arpa for ID AUTH • Linux conntrack and IKEv2 addresspool to resolve NAT problem • If people only realized they want ambiguous encryption……… • 12 Opportunistic Encryption using IPsec

  13. HISTORY: EDWARD SNOWDEN (2013) 13 Opportunistic Encryption using IPsec

  14. HISTORY: THE CRYPTO RUSH Encryption is more important now • Enterprises must encrypt: • Cloud instances • Data centres • MPLS, fibre • Transit cables • Puppet / ansible does not scale for mesh encryption • IPsec mesh encryption needed configuration modification on all nodes! • Opportunistic encryption is cloud encryption • Opportunistic encryption is internet encryption • 14 Opportunistic Encryption using IPsec

  15. HISTORY: IETF RESPONSE Internet Engineering Task Force steps up encryption RFC 7258 “Pervasive Monitoring Is an Attack” (May 2014) • “Pervasive monitoring is a technical attack that should be mitigated in the design of IETF protocols, where possible.” RFC 7435 “Opportunistic Security” (Dec 2014) • “Protocol designs based on Opportunistic Security use encryption even when authentication is not available, and use authentication when possible, thereby removing barriers to the widespread use of encryption on the Internet.” 15 Opportunistic Encryption using IPsec

  16. OPPORTUNISTIC IPsec AT IETF RFC 7619 “NULL Authentication for IKEv2” (Aug 2015) • IKEv2 (2008) already allowed asymmetrical authentication • Allow Anonymous client to Authenticated Server • Allow Anonymous to Anonymous • draft-antony-ipsecme-oppo-nat (Mar 2015) • NAT-Traversal support for Opportunistic IPsec • 16 Opportunistic Encryption using IPsec

  17. LINUX IPsec IMPLEMENTATION XFRM/NETKEY interaction with userland 1. IPsec in the kernel has policies (SPD) and states (SAD) Packets matching policies without a linked state cause ACQUIREs • If TCP, store packet. Else drop packet • Packets matching policies with a linked state causes encryption/decryption • 2. Userland (libreswan) opens netlink socket to the kernel Request to receive ACQUIREs and inserts “trap” policies • 3. Userland (libreswan) processes ACQUIREs Perform IKE negotiation with remote peer • Send IPsec policy and encryption/authentication keys to the kernel • 4. Kernel processes netlink messages Install received crypto keys in state, link crypto state to policy • If TCP triggered, send out cached packet • 17 Opportunistic Encryption using IPsec

  18. LINUX XFRM / NETKEY KERNEL STATE src ¡10.3.230.191/32 ¡dst ¡10.0.0.0/8 ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡dir ¡out ¡priority ¡666 ¡ptype ¡main ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡tmpl ¡src ¡76.10.157.68 ¡dst ¡209.132.183.55 ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡proto ¡esp ¡reqid ¡16413 ¡mode ¡tunnel ¡ src ¡0.0.0.0/0 ¡dst ¡10.3.230.191/32 ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡dir ¡fwd ¡priority ¡666 ¡ptype ¡main ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡tmpl ¡src ¡209.132.183.55 ¡dst ¡76.10.157.68 ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡proto ¡esp ¡reqid ¡16413 ¡mode ¡tunnel ¡ src ¡0.0.0.0/0 ¡dst ¡10.3.230.191/32 ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡dir ¡in ¡priority ¡666 ¡ptype ¡main ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡tmpl ¡src ¡209.132.183.55 ¡dst ¡76.10.157.68 ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡proto ¡esp ¡reqid ¡16413 ¡mode ¡tunnel ¡ ¡ src ¡209.132.183.55 ¡dst ¡76.10.157.68 ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡proto ¡esp ¡spi ¡0x605ad2be ¡reqid ¡16413 ¡mode ¡tunnel ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡auth-­‑trunc ¡hmac(sha1) ¡0x4b7e46cdee9c27588a1a75f6846073cea ¡96 ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡enc ¡cbc(aes) ¡0x11ddc9080945111087e81f9ebda5aacb7612c78af1895 ¡ src ¡76.10.157.68 ¡dst ¡209.132.183.55 ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡proto ¡esp ¡spi ¡0x8ca00de3 ¡reqid ¡16413 ¡mode ¡tunnel ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡auth-­‑trunc ¡hmac(sha1) ¡0x1119585d334a88e023134a100eca6b09f ¡96 ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡ ¡enc ¡cbc(aes) ¡0x310b852b9cbaf2cace7979c1aeb5df4b32eb418c5c300 ¡ 18 Opportunistic Encryption using IPsec

  19. OPPORTUNISTIC IPSEC DEPLOYMENT End-to-end encryption using IPsec 19 Opportunistic Encryption using IPsec

  20. OPPORTUNISTIC IPSEC GATEWAY Use a Linux gateway to protect devices not able to run opportunistic 20 Opportunistic Encryption using IPsec

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

THE LIBRESWAN PROJECT An Internet Key Exchange (IKE) daemon for IPsec Enterprise IPsec

THE LIBRESWAN PROJECT An Internet Key Exchange (IKE) daemon for IPsec Enterprise IPsec

THE LIBRESWAN PROJECT An Internet Key Exchange (IKE) daemon for IPsec Enterprise IPsec based VPN solution Make encryption the default mode of communication Certifjcations (FIPS, Common Criteria, USGv6, etc.)

917 views • 25 slides
Uses of IPSEC with VPNs VPNs Uses of IPSEC with Purpose Outline some scenarios where IPSEC

Uses of IPSEC with VPNs VPNs Uses of IPSEC with Purpose Outline some scenarios where IPSEC

Uses of IPSEC with VPNs VPNs Uses of IPSEC with Purpose Outline some scenarios where IPSEC can be used with VPNs Identify areas where extensions to IPSEC could be useful Bryan Gleeson, Page-1 VPN Reference Model CE CE PE

352 views • 9 slides
IPSEC VPN overview IPSEC VPN overview Basic VPN Architecture CPE/CLE CPE/CLE PE

IPSEC VPN overview IPSEC VPN overview Basic VPN Architecture CPE/CLE CPE/CLE PE

IPSEC VPN overview IPSEC VPN overview Basic VPN Architecture CPE/CLE CPE/CLE PE PE CPE/CLE Host PE CPE to CPE IPSEC can be used for : PE to PE PE to CPE Bryan Gleeson, Page-1 CPE to CPE IPSEC tunnels

680 views • 8 slides
Labeled IPsec draft-jml-ipsec-ikev1-security-context-00.txt

Labeled IPsec draft-jml-ipsec-ikev1-security-context-00.txt

Labeled IPsec draft-jml-ipsec-ikev1-security-context-00.txt draft-jml-ipsec-ikev2-security-context-00.txt Presented by: Joy Latten Document authors: Serge Hallyn, Trent Jaeger, Joy Latten, and George Wilson Problem Description Mandatory

295 views • 6 slides
Ipsec unter Linux 2.6 Einleitung: Die native IPsec Implementierung im Linux Kernel ab

Ipsec unter Linux 2.6 Einleitung: Die native IPsec Implementierung im Linux Kernel ab

Ipsec unter Linux 2.6 Einleitung: Die native IPsec Implementierung im Linux Kernel ab Version 2.5.47 basiert auf dem USAGI Projekt. Hierbei handelt es sich um eine alternative Implementierung des IPsec Stacks zum FreeS/WAN Projekt.

610 views • 8 slides
Kenny Paterson Information Security Group 1 Outline RSA encryption in PKCS#1 The SSH

Kenny Paterson Information Security Group 1 Outline RSA encryption in PKCS#1 The SSH

Provable Security Meets the Real World Kenny Paterson Information Security Group 1 Outline RSA encryption in PKCS#1 The SSH Binary Packet Protocol IPsec MAC-then-Encrypt Lessons learned? 2 Outline RSA encryption in PKCS#1

948 views • 61 slides
Opportunistic Composition of Human- Opportunistic composition Computer Interactions in Ambient

Opportunistic Composition of Human- Opportunistic composition Computer Interactions in Ambient

Opportunistic Composition of Human- Opportunistic composition Computer Interactions in Ambient Spaces Ambient env. Our approach Plastic HCI Augustin Degas Requirements Ergonomic criteria Sylvie Trouilhet - Jean-Paul Arcangeli, IRIT

379 views • 21 slides
Yasser F. O. Mohammad REMIDER 1: IPSec Uses REMINDER 2: IPSec Services Access control

Yasser F. O. Mohammad REMIDER 1: IPSec Uses REMINDER 2: IPSec Services Access control

Yasser F. O. Mohammad REMIDER 1: IPSec Uses REMINDER 2: IPSec Services Access control Connectionless integrity Data origin authentication Rejection of replayed packets a form of partial sequence integrity Confidentiality

818 views • 37 slides
Firewalls, IPsec and Linux by Harald Welte <laforge@netfilter.org> Firewalls, IPsec and

Firewalls, IPsec and Linux by Harald Welte <laforge@netfilter.org> Firewalls, IPsec and

Firewalls, IPsec and Linux by Harald Welte <laforge@netfilter.org> Firewalls, IPsec and Linux Contents Introduction Highly Scalable Linux Network Stack Netfilter Hooks Packet selection based on IP Tables The Connection Tracking

444 views • 9 slides
Opportunistic Computing Opportunistic Computing : A New Paradigm : A New Paradigm for Scalable

Opportunistic Computing Opportunistic Computing : A New Paradigm : A New Paradigm for Scalable

Opportunistic Computing Opportunistic Computing : A New Paradigm : A New Paradigm for Scalable Realism on Many-Cores for Scalable Realism on Many-Cores Romain Cledat, Tushar Kumar, Jaswanth Sreeram, and Santosh Pande Speedup Is Not Always the

420 views • 20 slides
Requirements for IPsec Negotiation in the SIP Framework

Requirements for IPsec Negotiation in the SIP Framework

Requirements for IPsec Negotiation in the SIP Framework draft-saito-mmusic-ipsec-negotiation-req-00.txt August 1, 2005 Makoto Saito (ma.saito@ntt.com) Shingo Fujimoto (shingo_fujimoto@jp.fujitsu.com) 1 Motivation To secure communication

83 views • 6 slides
Introduction to IPsec Charlie Kaufman charliek@microsoft.com 1 IP Security (IPsec) IETF

Introduction to IPsec Charlie Kaufman charliek@microsoft.com 1 IP Security (IPsec) IETF

Introduction to IPsec Charlie Kaufman charliek@microsoft.com 1 IP Security (IPsec) IETF standard for Network Layer security Popular for creating trusted link (VPN), either firewall-firewall, or machine to firewall Done at

868 views • 51 slides
Ruby Monstas Session 17: Interlude: Encryption Encryption What comes to mind if you think about

Ruby Monstas Session 17: Interlude: Encryption Encryption What comes to mind if you think about

Ruby Monstas Session 17: Interlude: Encryption Encryption What comes to mind if you think about encryption? Encryption Certificates Crypto Currencies Public Key AES Encryption Privacy SSH VPN HTTPS TLS Quantum Digital Signatures

837 views • 46 slides
IKEv2: IPSec Key Management Protocol Lecture 20 Acknowledgement: Slides from Vincent Luk, revised

IKEv2: IPSec Key Management Protocol Lecture 20 Acknowledgement: Slides from Vincent Luk, revised

IKEv2: IPSec Key Management Protocol Lecture 20 Acknowledgement: Slides from Vincent Luk, revised by Cunsheng Ding IP Security Architecture IPSec module 1 IPSec module 2 SPD SPD IKE IKE AH/ESP AH/ESP SAD SAD SA IKE: Internet Key

702 views • 26 slides
Objectives Diagnose and manage common opportunistic infections (OIs) in HIV Know the

Objectives Diagnose and manage common opportunistic infections (OIs) in HIV Know the

Objectives Diagnose and manage common opportunistic infections (OIs) in HIV Know the indications and preferred regimens for primary Opportunistic Infections and prophylaxis for OIs Immune Reconstitution Understand the features and

593 views • 16 slides
iLab IPsec Minoo Rouhi rouhi@net.in.tum.de Slides by Benjamin Hof hof@in.tum.de Chair of

iLab IPsec Minoo Rouhi rouhi@net.in.tum.de Slides by Benjamin Hof hof@in.tum.de Chair of

iLab IPsec Minoo Rouhi rouhi@net.in.tum.de Slides by Benjamin Hof hof@in.tum.de Chair of Network Architectures and Services Department of Informatics Technical University of Munich Lab 8 18ss 1 / 29 Outline Overview IPsec databases

563 views • 29 slides
Enhancing MySQL Security Vinicius Grippa Percona About me Support Engineer at Percona since

Enhancing MySQL Security Vinicius Grippa Percona About me Support Engineer at Percona since

Enhancing MySQL Security Vinicius Grippa Percona About me Support Engineer at Percona since 2017 Working with MySQL for over 5 years - Started with SQL Server Working with databases for 7 years 2 Agenda OS/Cloud security

1.16k views • 78 slides
Securing Communications with your Apache HTTP Server Lars Eilebrecht Lars@apache.org Securing

Securing Communications with your Apache HTTP Server Lars Eilebrecht Lars@apache.org Securing

Securing Communications with your Apache HTTP Server Lars Eilebrecht Lars@apache.org Securing Communications with your Apache HTTP Server About Me About Me Lars Eilebrecht Independent IT Consultant based in London, UK

786 views • 46 slides
TRIGGERFLOW Regression Testing by Advanced Execution Path Inspection 20 June 2019 Iaroslav

TRIGGERFLOW Regression Testing by Advanced Execution Path Inspection 20 June 2019 Iaroslav

default TRIGGERFLOW Regression Testing by Advanced Execution Path Inspection 20 June 2019 Iaroslav Gridin Cesar Pereida Garca Nicola Tuveri Billy Bob Brumley Tampere University, Tampere, Finland 1 / 15 default Outline Analysis

528 views • 15 slides
Kubelet to Istio: Kubernetes Network Security Demystified FOSDEM SPEED RUN @sublimino and

Kubelet to Istio: Kubernetes Network Security Demystified FOSDEM SPEED RUN @sublimino and

Kubelet to Istio: Kubernetes Network Security Demystified FOSDEM SPEED RUN @sublimino and @controlplaneio @sublimino Im: - Andy - Dev-like - Sec-ish - Ops-y @sublimino What is Network Security @sublimino Why do we need Network

1.54k views • 108 slides
CSE 344 Introduc/on to Data Management Sec/on 9: AWS, Hadoop, Pig La/n Yuyin Sun Homework 8

CSE 344 Introduc/on to Data Management Sec/on 9: AWS, Hadoop, Pig La/n Yuyin Sun Homework 8

CSE 344 Introduc/on to Data Management Sec/on 9: AWS, Hadoop, Pig La/n Yuyin Sun Homework 8 (Last hw J ) 0.5 TB (yes, TeraBytes!) of data 251 files of ~ 2GB each btc-2010-chunk-000 to btc-2010-chunk-317 You will write pig queries

351 views • 31 slides
Investigation of the environment influence for the underground and cryogenic gravitational wave

Investigation of the environment influence for the underground and cryogenic gravitational wave

Investigation of the environment influence for the underground and cryogenic gravitational wave detector, KAGRA 16th International Conference on TAUP 2019 2019/09/10, Toyama International Conference Center, Toyama, Japan Takaaki Yokozawa(ICRR)

475 views • 15 slides
Hacking (with) a TPM Dont ask what you can do for TPMs, ask what TPMs can do for you

Hacking (with) a TPM Dont ask what you can do for TPMs, ask what TPMs can do for you

Hacking (with) a TPM Dont ask what you can do for TPMs, ask what TPMs can do for you AndreasFuchsSIT (@Github) tpm2-software.github.io $ whoami / Full Disclosure Working on TPMs for Fraunhofer-SIT, some sponsored by Infjneon with

1.06k views • 18 slides
SPKI/SDSI 2.0 A Simple Distributed Security Infrastructure by Ronald L. Rivest MIT Lab for

SPKI/SDSI 2.0 A Simple Distributed Security Infrastructure by Ronald L. Rivest MIT Lab for

SPKI/SDSI 2.0 A Simple Distributed Security Infrastructure by Ronald L. Rivest MIT Lab for Computer Science (Joint work with Butler Lampson and Carl Ellison) 1 1 1 Outline context and history motivation and goals syntax

973 views • 38 slides

More recommend